Data Protection & Confidentiality Policy

NEXUS OFS Data Protection & Confidentiality Policy 

Introduction 

At NEXUS OFS, we are committed to protecting the privacy and confidentiality of personal data. This Data Protection and Confidentiality Policy outlines how we collect, use, and safeguard your personal data, ensuring that we comply with applicable data protection laws in the UAE and internationally. 

We take the security of your personal data seriously and strive to be transparent about the ways we collect, process, and store your information. This policy also explains your rights regarding the personal data you provide to us. 

IMPORTANT INFORMATION AND WHO WE ARE 

Purpose of this Data Protection and Privacy Policy 

The purpose of this policy is to explain how NEXUS OFS collects, uses, stores, and protects personal data provided by individuals who engage with our services, including our training programs, events, and website. We also aim to inform you about your legal rights regarding the data we collect and process. 

Who We Are 

NEXUS OFS is a training provider offering a wide range of educational courses and online learning experiences. We are dedicated to providing high-quality training while ensuring the confidentiality and protection of your personal data. 

Controller 

For the purposes of data protection law, NEXUS OFS is the data controller. This means we are responsible for determining how and why your personal data is processed. 

Changes to the Data Protection and Privacy Policy and Your Duty to Inform Us of Changes 

We may update this policy from time to time to reflect changes in the law or how we operate. When we make significant changes, we will notify you via email or through our website. You are encouraged to review this policy regularly and inform us if your personal details change. 

Third-party Links 

Our website and training platforms may contain links to third-party websites. Please note that we are not responsible for the content, privacy practices, or data protection policies of these third parties. We encourage you to review their privacy policies when visiting external websites. 

THE DATA WE COLLECT ABOUT YOU 

We collect personal data to provide our services to you and to maintain effective communication. The data we collect may include: 

    • Personal Identification Information: Name, email address, phone number, date of birth. 
    • Educational Information: Details related to your training courses, such as enrollment information, course progress, and certificates. 
    • Payment Information: Billing address and payment method details, if applicable. 
    • Technical Information: Data related to your use of our website, such as IP address, browser type, and access times. 

If You Fail to Provide Personal Data 

If you fail to provide the required personal data, we may not be able to offer you the services you requested, such as enrollment in courses or issuing certifications. 

HOW WE COLLECT YOUR PERSONAL DATA 

We collect personal data through various methods, including: 

    • Direct Interactions: When you fill out forms on our website, enroll in courses, or contact us directly via email or phone. 
    • Automated Technologies: Through the use of cookies and tracking technologies when you visit our website or use our online training platforms. 
    • Third-party Sources: From other organizations or platforms where we may have partnered to provide services to you. 

HOW WE USE YOUR PERSONAL DATA 

We use your personal data for the following purposes: 

    • To deliver and manage the training services you request. 
    • To process payments and send invoices. 
    • To communicate with you about your course progress and any updates related to the training program. 
    • To improve our services, enhance user experience, and conduct data analytics. 
    • To comply with our legal obligations, such as maintaining records for tax purposes or responding to lawful requests from authorities. 

 

DISCLOSURES OF YOUR PERSONAL DATA 

We may share your personal data with third parties in the following circumstances: 

    • Service Providers: We may disclose personal data to third-party companies that provide services on our behalf, such as payment processing, IT services, or course delivery platforms. These third parties are required to protect your data and use it only for the purposes specified by us. 
    • Legal and Regulatory Authorities: In compliance with legal obligations, we may disclose your personal data to government authorities or regulatory bodies, such as tax authorities or law enforcement. 

INTERNATIONAL TRANSFERS 

We may transfer your personal data to countries outside the UAE if we use third-party service providers that operate in other jurisdictions. If we transfer your data internationally, we will ensure appropriate safeguards are in place to protect your information in accordance with data protection laws. 

DATA SECURITY 

We take appropriate technical and organizational measures to safeguard your personal data. These measures include encryption, secure storage solutions, and regular audits to ensure your data remains safe from unauthorized access, loss, or alteration. 

DATA RETENTION 

We will retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy and comply with our legal obligations. Once your data is no longer needed, we will securely delete or anonymize it. 

How Long Will We Use Your Personal Data? 

The retention period depends on the type of data. For example: 

    • Training records and certificates: Retained for a period of 5 years for reference and certification purposes. 
    • Payment and billing information: Retained for as long as required by tax regulations. 

 

YOUR LEGAL RIGHTS 

You have certain legal rights regarding your personal data. These rights may include: 

    • Right to Access: You can request copies of your personal data. 
    • Right to Rectification: You can request that we correct any inaccurate or incomplete data. 
    • Right to Erasure: You can request that we delete your personal data under certain circumstances. 
    • Right to Restrict Processing: You can request that we limit the processing of your personal data in certain situations. 
    • Right to Object: You can object to the processing of your personal data if we are relying on legitimate interests as the lawful basis for processing. 
    • Right to Data Portability: You can request that we transfer your personal data to another organization, where applicable. 

No Fee is Usually Required 

You will not have to pay a fee to access your personal data or exercise any of your other rights. However, we may charge a reasonable fee if your request is clearly unfounded or excessive. 

What We May Need from You 

To process your requests, we may need to verify your identity. This helps to ensure that personal data is not disclosed to anyone who does not have the right to access it. 

Time Limit to Respond 

We aim to respond to all legitimate requests within one month. If your request is particularly complex, we may extend the response time by an additional two months. We will inform you of any such extension. 

 

GLOSSARY 

    • Personal Data: Any information that can identify an individual, directly or indirectly. 
    • Processing: Any operation or set of operations performed on personal data, such as collection, storage, use, or deletion. 

 

LAWFUL BASIS 

We process your personal data on the following lawful bases: 

    • Consent: Where you have provided your consent for us to process your personal data. 
    • Contractual Necessity: To fulfill our obligations under a contract with you, such as providing training services. 
    • Legal Obligation: Where processing is necessary to comply with legal obligations, such as tax reporting. 
    • Legitimate Interests: Where we have a legitimate interest in processing your data, provided your rights are not overridden by our interests. 

 

THIRD PARTIES 

Internal Third Parties 

    • Employees and contractors within NEXUS OFS who need access to your personal data for the purpose of providing training services or administrative support. 

External Third Parties 

    • Service providers, such as payment processors, IT service providers, and online course platforms. 
    • Regulatory bodies or law enforcement agencies where required by law. 

 

YOUR LEGAL RIGHTS 

You have the right to: 

    • Request access to your personal data. 
    • Request correction of your personal data if it is inaccurate or incomplete. 
    • Request deletion of your personal data under certain conditions. 
    • Object to processing of your data in certain circumstances. 
    • Request data portability to transfer your personal data to another service provider.